F5 Networks BIG-IP : BIND vulnerability (SOL15172)
Medium Nessus Plugin ID 86004
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionISC BIND before 9.7.2-P2, when DNSSEC validation is enabled, does not properly handle certain bad signatures if multiple trust anchors exist for a single zone, which allows remote attackers to cause a denial of service (daemon crash) via a DNS query
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution SOL15172.